Peer-to-peer botnets have witnessed a dramatic surge over the past three years, but it appears the number of infected computers in these zombie networks is exceeding all expectations.
A known critical flaw in Ruby on Rails (CVE-2013-0156) is currently exploited in the wild, although it was patched months ago. The flaw, originally reported in January, is currently abused by cyber-criminals to take control of still-vulnerable servers.
American teenagers prefer Facebook to other social media platforms despite being most frustrated by this particular online social medium, a new report by the Pew Internet & American Life Project finds.
Several Android apps of British company Sky and its Twitter account were hacked by the Syrian Electronic Army. The hackers posted a tweet, allegedly from the broadcaster, advising people to uninstall the official apps.
Twitter has introduced two-factor authentication by including mobile phones in users’ verification processes after a series of high-profile account hacks.
When it comes to hacking, search engines turn out to be the tools that get your work half done, or so is the case with a team of reporters from Scripps News who stumbled on a huge pool of customer data via Google Search.
A major security incident targeting Google servers in 2009 seems to have been triggered by counter-intelligence, new information reveals.
An imprisoned hacker designed an anti-skimming ATM device together with two other inventors, according to Reuters. Romanian 33-year-old Valentin Boanta developed the Secure Revolving System to change the way ATMs read bank cards and prevent hidden skimming devices from stealing clients’ personal information. The Romanian has been serving a five-year jail sentence for bank card fraud since 2009.
A flaw in the Linux kernel that can escalate users’ privileges to root has been discovered in the wild. The bug - a zero-day since January 2011 - affects Linux kernel versions 2.6.37 through 3.8.8 compiled with the CONFIG_PERF_EVENTS kernel configuration option.
An average flame on the ZPanel’s support forums has degenerated into a security incident that has rendered the company’s website inaccessible to customers as a precaution.
US police dismantled a gang of hackers that stole $45 million in fraudulent ATM withdrawals across the globe after eight suspects got arrested by New York authorities a few days back.
Several malicious browser extensions hijack Facebook accounts, posting and sharing messages on behalf of users, Microsoft warns. The company first discovered the threat in Brazil and detects it as Trojan:JS/Febipos.A.
The Syrian Electronic Army took over The Onion’s Twitter account on Monday in a simple, yet highly complex, phishing attack on some employees.
A critical vulnerability in ColdFusion server software versions 10 and below has been identified in production environments. This flaw, also known as CVE-2013-3336, allows an attacker to remotely access files on the vulnerable server.